Application Level Pen Test

From: CHEN, Chuan (chuan.chen_at_atosorigin.com)
Date: 04/27/04

  • Next message: fergus: "Re: SME risk assessment (Was: Bank Assessment)" 
    Date: Tue, 27 Apr 2004 14:13:10 +0100
To: pen-test@securityfocus.com

    Hello,

    I wonder if anybody in this list has experience using ProCheckNet
    Penetration Test provided by ProCheckUp. It's claimed to be artificial
    intelligent tool that can exploit vulnerabilities in your system, and will
    change the future of Penetration Test. The problem is that this comes only
    as a managed service, so we aren not able to use the tools by ourselves.
    It's also done by using only one scan (by ProCheckNet) which breach the
    principle that we should always cross exam with other tools.

    I would like to know how its capability / functionalities compare to other
    tools such as AppScan from Sanctum Inc or ScanDo from KavaDo.

    And I am also very curious to know what exactly are the difference, in terms
    of functionality, between these so called application-level testing tools
    and Nessus.

    Thanks very much for any comments/ suggestions.

    Chuan

    ___________________________________________________________________________

    This e-mail and the documents attached are confidential and intended solely
    for the addressee; it may also be privileged. If you receive this e-mail in
    error, please notify the sender immediately and destroy it. As its integrity
    cannot be secured on the Internet, the Atos Origin group liability cannot be
    triggered for the message content. Although the sender endeavours to maintain
    a computer virus-free network, the sender does not warrant that this
    transmission is virus-free and will not be liable for any damages resulting
    from any virus transmitted.
    ___________________________________________________________________________

    ------------------------------------------------------------------------------
    Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
    any course! All of our class sizes are guaranteed to be 10 students or less
    to facilitate one-on-one interaction with one of our expert instructors.
    Attend a course taught by an expert instructor with years of in-the-field
    pen testing experience in our state of the art hacking lab. Master the skills
    of an Ethical Hacker to better assess the security of your organization.
    Visit us at:
    http://www.infosecinstitute.com/courses/ethical_hacking_training.html
    -------------------------------------------------------------------------------

  • Next message: fergus: "Re: SME risk assessment (Was: Bank Assessment)"